Payroll fraud via social engineering is rising.

Attackers:
• Trick IT help desks
• Reset MFA
• Log into Workday via VDI
• Change direct deposits
• Redirect salaries
Identity recovery = critical attack surface.

Full report:
https://www.technadu.com/payroll-fraud-direct-deposit-attacks-target-payroll-systems-like-workday-via-social-engineering/619949/

#PayrollFraud #CyberSecurity #IdentitySecurity #Workday

💼 Payroll Fraud Alert: Storm-2657 is targeting U.S. universities by compromising Workday accounts to redirect salaries.
Threats include phishing emails, MFA bypass, and stealth inbox rules to hide malicious activity.
🛡️ How is your organization defending SaaS HR systems?
💬 Share your defense tactics & follow @technadu for expert threat analysis.

#Cybersecurity #PayrollFraud #Workday #Infosec #MFA #Phishing #IdentitySecurity #SaaSAttacks #ThreatIntel #UniversitySecurity #CyberAwareness

Let's all calm down now, ok? Sure, deepfake video calls can be trustworthy enough to lure a potential victim into rash actions. But how many employees of a company are actually authorised to initiate transfers of millions of dollars? The theoretical attack surface is therefore much smaller than such headlines suggest. Effectively training the awareness of such a small number of employees should not be too difficult now. All it takes is for your CEO to tell you that he will never give you payment instructions via video call #AI #CyberSecurityNews #fraudprevention #cybersecurity #internalfraud #ThreatCloudAI #payrollfraud #TRENDINGNOW #cyberfraud #CyberTalk #CEOfraud #fraud #tech

https://www.darkreading.com/threat-intelligence/deepfake-apps-explode-multimillion-dollar-corporate-heists